-
29 votes
-
Employees at law enforcement agencies across the US ran thousands of Clearview AI facial recognition searches — often without the knowledge of the public or even their own departments
9 votes -
What does your gaze reveal about you? On the privacy implications of eye tracking
10 votes -
Pasco County’s Sheriff must end its targeted child harassment program
11 votes -
Finding virtue in the virtual
2 votes -
A comparative analysis of security, privacy, and censorship issues in TikTok and Douyin, both developed by ByteDance
5 votes -
French subsidiary of the Swedish retailer IKEA will go on trial over allegations that they snooped on employees and customers using private detectives and police officers
5 votes -
Reddit announces online presence indicators
67 votes -
Encrypted messaging app Signal blocked in China
29 votes -
Privacy is a commons
3 votes -
Feature suggestion - tildes only content
It would be nice if there was an extra box that allows you to add info that is private to the people on tildes. For example I would like to share creds to a game account, but I only want people on...
It would be nice if there was an extra box that allows you to add info that is private to the people on tildes. For example I would like to share creds to a game account, but I only want people on tildes to get that info, not the public who aren't users and just visit.
10 votes -
Hackers break into thousands of security cameras, exposing Tesla, jails, hospitals
16 votes -
Google’s FLoC is a terrible idea
31 votes -
The Amazon Assistant browser extension requires extensive permissions, has the capabilities to monitor and manipulate all of its users' web activity, and seems to violate multiple browsers' policies
11 votes -
Signal's server repo hasn't been updated since April 2020
26 votes -
Ubuntu sends http requests to Google cloud, here’s a fix
Ubuntu has this package installed by default: network-manager-config-connectivity-ubuntu It's only purpose is to provide settings for NetworkManager to send requests to...
Ubuntu has this package installed by default:
network-manager-config-connectivity-ubuntuIt's only purpose is to provide settings for NetworkManager to send requests to connectivity-check.ubuntu.com , and based on the result (AFAIK) detect redirection by captive portals and open an ISP's page (think public WiFi, or hotel rooms, where you need to authorize to access the net).
Well, connectivity-check.ubuntu.com is hosted on Google cloud (you can check that by running:
dig connectivity-check.ubuntu.com whois [the IP from previous query]
), so by default Ubuntu sends requests to a Google cloud page.
I don't say Google counts daily active Ubuntu users (because many of those have the same IP), or that Google actively logs and analyzes that data. But some of you guys may not like that behavior.So what's the fix?
Purge the package
sudo apt purge network-manager-config-connectivity-ubuntu
If you do need a captive portal detection, create your own config file to query some HTTP (not HTTPS) page of your choice, in the example below I have a Debian page used for the same purpose. Use your favorite text editor to create and edit /etc/NetworkManager/conf.d/90-connectivity-custom.conf :
[connectivity] uri=http://network-test.debian.org/nm
Restart NetworkManager
sudo systemctl restart NetworkManager
If you run an Ubuntu derivative, please report if you have network-manager-config-connectivity-ubuntu installed in the comments.
11 votes -
The small web is beautiful
23 votes -
Google to stop selling ads based on your specific web browsing
29 votes -
Spoonbill—a change-tracker for Twitter bios—offers a glimpse into the unseen effort with which we express our identities online, and how the uncanny feeling of being watched informs our sense of self
8 votes -
Brave has acquired Cliqz and their Tailcat search engine, plans to offer a privacy-oriented search engine
9 votes -
Lessons from a year of Covid
9 votes -
Three years later: Did the GDPR actually work?
7 votes -
Introducing State Partitioning / Total Cookie Protection, a new privacy feature in Firefox 86 that universally prevents cookie-based tracking
16 votes -
What are security, privacy, and anonymity?
6 votes -
Browser ‘favicons’ can be used as undeletable ‘supercookies’ to track you online
20 votes -
Developer creeped out after he fired up Ubuntu VM on Azure and was immediately approached by Canonical sales rep on LinkedIn
14 votes -
No, getting rid of anonymity will not fix social media; it will cause more problems
16 votes -
Signal ignores proxy censorship vulnerability, bans researchers
11 votes -
A hardware mute button for Alexa
6 votes -
Privacy and digital ethics after the pandemic
3 votes -
Why you should delete social media: Say hello to a better life!
8 votes -
New Spotify patent involves monitoring users’ speech to recommend music
25 votes -
Grindr fined 10% of their global annual revenue ($11.7 million) in Norway for sharing deeply personal information with advertisers, including location, sexual orientation and mental health details
28 votes -
Firefox 85 cracks down on supercookies
18 votes -
The battle inside Signal - The fast-growing encrypted messaging app is developing features that would make it more vulnerable to abuse. Current and former employees are sounding the alarm.
31 votes -
ADT employee covertly accessed about 200 security cameras he installed to spy on people having sex
9 votes -
Windscribe: We're not paying for #1
9 votes -
Automatic redaction of user data from logs and crash reports in CockroachDB
5 votes -
To guarantee privacy, focus on the algorithms, not the data
6 votes -
Nearly 1.6 million Illinois Facebook users to get about $350 each in privacy settlement
7 votes -
TikTok makes major updates to privacy and features available to teenagers, including setting accounts to private by default, and disabling public comments and video-downloading
8 votes -
Email: How about doing it right?
In light of the seemingly increasing rate of data breaches and privacy violations in general, I've decided to take some steps further regarding my online presence. Among other things, I decided to...
In light of the seemingly increasing rate of data breaches and privacy violations in general, I've decided to take some steps further regarding my online presence.
Among other things, I decided to switch all my online accounts to custom domain email addresses, so I grabbed two domain names (with WhoisGuard enabled): one for use with stuff related to my real identity (think
@firstlast.com
), and the other for all else (think@randomword.com
). Then, I changed the email address of each one of my existing online accounts, taking advantage of the catch-all feature. To make things short, it goes like this:Accounts not related to my real identity:
tildes.net.187462@randomword.com
-> tildes.netreddit.com.178334@randomword.com
-> reddit.com- ...
Accounts related to my real identity:
amazon.com.113908@firstlast.com
-> amazon.combankofamerica.com.175512@firstlast.com
-> bankofamerica.com- ...
As you might have guessed, the 6 digits ending the local part of email addresses are meant to be randomly generated, in order to mitigate easy guesses by spammers due to catch-all (though I've also created a specific sieve filter to mark incoming emails with "unknown" recipient as spam).
Before you ask, I don't intend to start a discussion about threat modelling here. I just want—as anyone who is not a complete tech-illiterate—to have a reasonable weapon against spam caused by recurrent data breaches, so that if an email address is leaked, I can toss it and replace it with a new one without much effort.
Also, I value owning my email addresses, in the sense that if I decide to change email provider in the future, I won't have to change my addresses too as a consequence. For communicating with real humans (e.g., my doctor), I could use a non catch-all address like
first@firstlast.com
.I wonder what do you think of this approach... Is it overkill? Do you see any major concern from a privacy or security standpoint? Are you doing something similar and are happy with it? I would very much like to hear your experiences with email, especially about the approach you settled with.
18 votes -
Solid web sharing tools
9 votes -
WhatsApp gives users an ultimatum: Share data with Facebook or stop using the app
28 votes -
I'm thinking of getting a password manager. How does it work and any advice on transitioning to one?
The reason why is to make more accounts for reddit, YouTube (one for entertainment and Portuguese content each) news sites where signing up is an alternative to pass a paywall and other sites with...
The reason why is to make more accounts for reddit, YouTube (one for entertainment and Portuguese content each) news sites where signing up is an alternative to pass a paywall and other sites with comment sections.
Bad euphemism bro.Also some sense of "praxis" in order to gain privacy.Edit: And also getting anxious at the idea of remembering all my passwords, and putting them in a note in my old phone, which I am not bringing into my new phone and want to use this to delete.
According to these two articles, I can save my old passwords I had before and maybe even still make new ones after, and put them in a folder behind one true (master) password, which is the one you will truly care about, and they will be saved in a way in which the managing company won't know your password?
There's also figuring out which provider to use (and probably a similar post for alt-mail providers.) This is overwhelmingly for mobile (Android). No real space constraints for apps, only price, because I'm not working age.
27 votes -
Standard Notes completes penetration test and cryptography audit
14 votes -
FBI found Ghislaine Maxwell using mobile phone data
15 votes -
I spent a year deleting my address online, then it popped up on Bing
20 votes -
Is Firefox still a good (enough) browser for privacy?
Someone posted this on the privacy subreddit. I also ended up finding this and this after doing a bit of searching. As someone who isn’t in the CS/IT spheres (chemical engineering is my...
Someone posted this on the privacy subreddit. I also ended up finding this and this after doing a bit of searching. As someone who isn’t in the CS/IT spheres (chemical engineering is my background), Firefox has been my go-to browser for awhile, although I’m being made aware of the flaws of Firefox (most of which go over my head) and behavior of Mozilla. What can be done to fix this, especially considering that Firefox is the only FOSS browser with a significant user base?
22 votes -
Privacy is a collective concern
4 votes